Lucene search
K

4 matches found

OSV
OSV
added 2026/07/01 4:53 p.m.5 views

CVE-2026-12480 Arbitrary HDF5 File Read via Virtual Dataset Bypass in keras-team/keras

Keras versions up to and including 3.13.2 are vulnerable to an arbitrary HDF5 file read due to an incomplete fix for CVE-2026-1669. The vulnerability resides in the H5IOStore.verifydataset and fileeditor.py methods, which fail to check the dataset.isvirtual property of HDF5 datasets. This allows ...

5.5CVSS6.2AI score0.00127EPSS
Exploits0References4
OSV
OSV
added 2026/04/29 1:21 p.m.10 views

JLSEC-2026-352

HDF5 is software for managing data. Prior to version 1.14.4-2, an attacker who can control an h5 file parsed by HDF5 can trigger a write-based heap buffer overflow condition. This can lead to a denial-of-service condition, and potentially further issues such as remote code execution depending on...

7.8CVSS6.7AI score0.00356EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/06/28 12:0 a.m.6 views

HDF5 安全漏洞

HDF5 is an open source file format and library for storing and managing large-scale scientific data. HDF5 suffers from a heap buffer overflow vulnerability that originates from an exception in the handling of the H5Ochunkprotect function in the file /src/H5Ochunk.c. An attacker can exploit this...

7.8CVSS7.6AI score0.00239EPSS
Exploits1References1
OSV
OSV
added 2018/09/20 6:29 a.m.6 views

UBUNTU-CVE-2018-17233

A SIGFPE signal is raised in the function H5Dcreatechunkfilemaphyper of H5Dchunk.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack...

6.5CVSS7AI score0.01972EPSS
Exploits1References4
Rows per page
Query Builder